$ rpki-client -vvf rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/98D5AE30C88C11ED907C1C0EC4F9AE02.roa File: 98D5AE30C88C11ED907C1C0EC4F9AE02.roa (raw, json) Hash identifier: QgXD2g83uAfsRZ3zlwkeEmrEVbeOZyYkGqvp3sd6rZU= Subject key identifier: 15:DC:2F:BC:1F:5E:BD:28:FE:92:1D:3C:89:30:B1:4B:40:A5:5C:51 Certificate issuer: /CN=A918D701/serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Certificate serial: 7B Authority key identifier: DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/98D5AE30C88C11ED907C1C0EC4F9AE02.roa Signing time: Fri 03 Nov 2023 05:56:31 +0000 ROA not before: Fri 03 Nov 2023 05:56:31 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 150374 IP address blocks: 103.18.206.0/23 maxlen: 23 2001:df1:5fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D701/serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Validity Not Before: Nov 3 05:56:31 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65448b8f-efa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b4:d4:85:ff:ba:e4:d8:2d:ab:0e:4b:d9:6b: 20:eb:e2:92:99:ee:cd:b6:51:39:31:df:ef:60:86: af:9f:59:a0:e0:41:b0:81:b1:ad:df:c7:65:aa:97: 6b:da:95:cc:cd:f3:93:57:e8:30:fe:42:44:a1:3e: 6d:e0:a7:22:fc:88:d5:74:5c:e5:74:f1:3b:ec:c2: a2:20:2d:33:e5:c1:f3:ec:4a:88:ef:90:9f:a4:ee: 6d:27:dd:ea:11:6e:cc:e2:b5:eb:8e:0b:e8:a4:8b: 29:41:78:81:60:0d:96:ce:9f:39:41:d6:9c:6d:9a: cc:3d:10:0c:b7:f9:1e:c1:c3:12:33:86:50:26:17: ae:4f:08:74:20:86:93:72:e9:5b:02:86:e0:bd:1c: e3:b3:62:91:37:c9:5e:e9:c3:e8:b8:b2:f0:da:d1: 33:4b:ba:cb:e2:1e:93:fd:32:69:17:bf:ff:e7:33: ca:20:55:99:7e:06:c3:37:db:c9:c1:0a:dd:ef:c6: 34:46:2e:33:64:01:70:be:c7:13:da:e8:51:62:7c: 8e:e7:00:2a:dd:74:40:15:c2:91:9b:d4:15:db:da: 76:6a:c2:0c:36:1c:27:d0:53:79:1e:ad:08:33:21: 03:f7:a2:03:79:06:a7:d3:33:34:f1:40:ce:91:d4: 18:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DC:2F:BC:1F:5E:BD:28:FE:92:1D:3C:89:30:B1:4B:40:A5:5C:51 X509v3 Authority Key Identifier: keyid:DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/98D5AE30C88C11ED907C1C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.206.0/23 IPv6: 2001:df1:5fc0::/48 Signature Algorithm: sha256WithRSAEncryption 82:14:60:6d:fc:9d:dd:0a:40:e9:b5:61:74:e8:26:5b:62:8f: 0b:1c:98:40:48:9f:9f:ee:b9:08:43:66:80:3b:d6:0b:6e:b9: 20:dc:ee:1c:65:41:e9:87:52:56:54:8a:80:b6:31:b3:1d:31: a3:f3:4c:15:77:05:f4:8d:80:11:54:a8:ae:bb:11:b7:ad:17: c9:8c:33:fd:6e:03:94:35:54:35:cc:0e:59:53:7a:15:85:01: b6:b6:a7:1f:32:4a:79:2b:aa:68:55:67:7f:13:b4:36:90:88: ee:7f:e7:29:d7:ca:dc:f3:de:13:84:49:d8:1b:d7:04:e3:f1: 45:16:d0:16:33:98:7d:67:e8:b6:0b:83:95:d1:cd:b0:47:0a: b7:57:a1:70:d0:66:9d:ba:da:9f:ce:18:90:29:02:0c:2b:9e: 91:0d:84:aa:99:18:db:2b:a0:c4:f2:ae:cf:b9:81:19:2c:5b: 25:fb:7b:47:c1:ad:56:7e:da:c4:37:69:2d:78:38:3a:a3:27: 90:a9:58:c1:61:cc:00:65:4c:ae:b8:9e:ec:2f:92:68:b3:81: c3:70:b1:fb:10:ae:80:f9:12:09:bd:7a:02:ca:a5:2c:8c:e0: ec:c7:04:86:75:f3:1d:21:c0:ab:46:1a:89:2b:3f:84:8d:d4: db:2d:53:a9 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDcwMTExMC8GA1UEBRMoREFDQ0RCODBGODc1RjU1Mjg5MzFBODgyNUQxQUFGQTE4 MEE5QjE3OTAeFw0yMzExMDMwNTU2MzFaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDQ4YjhmLWVmYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXtNSF/7rk2C2rDkvZayDr4pKZ7s22UTkx3+9ghq+fWaDgQbCBsa3fx2Wql2va lczN85NX6DD+QkShPm3gpyL8iNV0XOV08TvswqIgLTPlwfPsSojvkJ+k7m0n3eoR bsziteuOC+ikiylBeIFgDZbOnzlB1pxtmsw9EAy3+R7BwxIzhlAmF65PCHQghpNy 6VsChuC9HOOzYpE3yV7pw+i4svDa0TNLusviHpP9MmkXv//nM8ogVZl+BsM328nB Ct3vxjRGLjNkAXC+xxPa6FFifI7nACrddEAVwpGb1BXb2nZqwgw2HCfQU3kerQgz IQP3ogN5BqfTMzTxQM6R1BhnAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUFdwvvB9e vSj+kh08iTCxS0ClXFEwHwYDVR0jBBgwFoAU2szbgPh19VKJMaiCXRqvoYCpsXkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThENzAxL0QxODc4RUY2Qzg4 NzExRURCQkU2QTMyQkM0RjlBRTAyLzJzemJnUGgxOVZLSk1haUNYUnF2b1lDcHNY ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnN6YmdQaDE5VktKTWFpQ1hScXZvWUNwc1hrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcwMS9EMTg3OEVGNkM4ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi85OEQ1QUUzMEM4 OEMxMUVEOTA3QzFDMEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWcSzjAPBAIAAjAJAwcAIAEN8V/AMA0GCSqGSIb3DQEBCwUA A4IBAQCCFGBt/J3dCkDptWF06CZbYo8LHJhASJ+f7rkIQ2aAO9YLbrkg3O4cZUHp h1JWVIqAtjGzHTGj80wVdwX0jYARVKiuuxG3rRfJjDP9bgOUNVQ1zA5ZU3oVhQG2 tqcfMkp5K6poVWd/E7Q2kIjuf+cp18rc894ThEnYG9cE4/FFFtAWM5h9Z+i2C4OV 0c2wRwq3V6Fw0GadutqfzhiQKQIMK56RDYSqmRjbK6DE8q7PuYEZLFsl+3tHwa1W ftrEN2kteDg6oyeQqVjBYcwAZUyuuJ7sL5Jos4HDcLH7EK6A+RIJvXoCyqUsjODs xwSGdfMdIcCrRhqJKz+EjdTbLVOp -----END CERTIFICATE-----Generated at Fri May 17 08:13:52 2024 by rpki-client on console-fra.rpki-client.org